• Latest version of CLE makes RDP to enter Credentials twice

    Hello Team, I hope this message finds you well! I would like to ask if issues associated with BUGID 441124 in the Client Login Extension (CLE) version 4.5.1. As noted in the release notes , users are experiencing a situation where the RDP prompts…
  • [SSPR] Macros in Helpdesk Search Filter

    Hello, it seems to be not possible to use macros in the Help Desk Search Filter (see Idea ID: 2877530). Will this feature ever be implemented? Is there any possible workaround to retrieve at least the DN of the logged in user? Thank you. Best…
  • Users using the Forgotten Password module within Self-Service Password Reset will have to enter their username twice before they can change their password.

    We are using SSPR for Linux version 4.7.0. Users using the Forgotten Password module within Self-Service Password Reset must enter their username twice before changing their password. Within the Forgotten Password module, we are using OAuth external…
  • Query in DAL Return 0 result for a non uaadmin user

    Hello again friend! We create a DAL Query that work as expect when we run a form from User App portal with uaadmin user, but when we use other user the query return 0. What have we omitted? Thanks!
  • SSPR 4.8 is released

    Have been waiting for this to drop for a while, got reminded by support earlier today that this has been released. Two key enhancements/features: Kubernetes Support (was already technically available via the IDM release bund, but marks the first…
  • Data Collection Service Driver Error

    Friends, I am get the following error with a Data Collection Driver. [09/02/24 13:29:00.671]:Data Collection Service ST:DCSSubscriberShim: RTD:: Attempting a GET using driver GUID :tmd092:8543/.../711B5232-5E0F-4f18-8F4F-32521B710F5E [09/02/24 13…
  • New SSPR 4.7 Appliance - 500 errors

    In the Appliance Configuration, if I click "Network" or "Administrative Passwords" I get a 500 error. HTTP ERROR 500 javax.servlet.ServletException: org.springframework.web.util.NestedServletException: Request processing failed; nested exception is…
  • SSPR - Can Client Credentials OAuth flow be configured on a web service action?

    Inquiry : Is it possible to configure Microsoft Graph API to trigger a phone number update on Microsoft Entra Authentication Methods? Documentation and configuration process API Configuration Action to Add a New Phone Number: article . SSPR as…
  • Inconsistent behaviour across Forgotten Password Verification Methods regarding LDAP profile sticky affinity

    SSPR allows the use of one or more verification methods as part of the forgotten password process. Problem is that they are inconsistent with regards to how well they persist the LDAP profile that was successfully used to match the user's initial input…
  • Rename "login hint" sent as optional parameter with oauth authorization request

    SSPR has a feature that allows us to use the macro syntax and send extra info as part of an auth redirect to remote OAUTH2 server. However, it does NOT allow us to rename the prefix... it is always "&login_hint=<whatever macro expanded as>" I would…
  • Forgotten password - Bogus User Policy combined with external OAuth verification method does not work

    At a customer, we integrated SSPR's forgotten password with an external provider via OAuth so that users can use this as a verification method when they have forgotten their password. We had something similar configured on SSPR 4.6, but that used OSP…
  • After installing CLE Patch 4.6.0.1 Links behavior change

    Hello Team & community, After installing the patch update CLE 4.6.0.1 which brings fixes for vulnerabilities. For some reason the links configured on Redirect and forwarding, behave differently. Normally, links should open by mouse clicks. Nevertheless…
  • SMS via specific API - How?

    Hi, I am trying to configure SSPR to send SMS, using this site gatewayapi.com/.../ I believe the API's are well documented, but I must say, I am having difficulties with getting it to work via SSPR I can send via curl, like this (I know the URL looks…
  • Setup default account name on TOTP Microsoft Authenticator?

    Hi, I am using TOTP as the recovery method for forgotten password. User must firstly register QRCode TOTP by using Microsoft Authenticator (selected by my company). After register on the app, the first line shows domain name (Account Name) and…
  • Import https certificate in SSPR app but nothing is shown

    Hi, I am using SSPR v4.6.0.0 b30 r911c8eaa appliance. I imported https certificate (p12 format) and it was success but there was nothing show (No key present). I restarted server and the sspr app sitll used the default self-signed cert. Please help…
  • SSPR 5015 if user's password is about to expire within next 5 days

    I am getting the below error in SSPR when trying to change password only if my password is going to expire within next 5 days. In the Change Password screen I am getting below error message. If the password expiry is more than 6 days then I am not seeing…
  • Helpdesk Module - Directory unavailable when having multiple LDAP-profiles configured

    We've multiple LDAP-profiles configured to support root and child domains in our environment. When adding the 2nd LDAP-profile, I'm receiving the error below when using the Helpdesk Module. I'm authenticated with de ssc profile, but it is complaining…
  • "Incorrect value format for value" when accessing SSPR page

    I'm doing a distributed installation of 4.8.7 (using the Bundle Installer) on SLES 15 SP 5 w/Identity Manager 4.8.7 on one box and Identity Applications 4.8.7 on another. When I access idmdash, I get the normal authentication page, then when I click submit…
  • Couple of Questions about SSPR

    Good day, I don't have much experience with SSPR and I thought that this would be the place to start asking a few questions for my customer. Customer is experiencing mail not being accepted by SMTP servers and it is aging out of the queue. They…
  • SSPR Check expired password

    Dear community, we have set up a SSPR and connected it to eDirectory like specified in the documentation. We also have a policy assigned to a user where it is stated, that password is already expired. We want for SSPR to send email on password expiration…
  • SSPR CLE Custom denial message

    Dear community, we have setup a SSPR with connection to LDAP. SSPR is shown to users via Access Gateway proxy service and so is its REST api. Next we have configured a CLE to talk to SSPR for users to change their passwords. Since we do not want…
  • macro @User:PwExpireTime@ not returning a value

    We are in the process of configuring password notification via SSPR. I how found where the macro for days until password expires ( @User:DaysUntilPwExpire@) returns a value but the password expire time ( @User:PwExpireTime@) does not. I have noted this…
  • SSPR CLE Forgotten Password Button

    Dear Community, I have installed CLE for windows with connection to SSPR server. We would like to not display "Forgotten Password" button since the client is not going to use this functionality. I can not find any information about this in documentation…
  • Secondary SMS attribute value not utilized for SMS communication in Change Password

    Hi! In the SSPR LDAP Directory profile it is possible to configure 3 attributes for SMS communication. The expectation is that if the first attribute is missing, the next with value would be picked. That is not the case, for example when changing…
  • Profile support for User Activation?

    Is there any chance that profile support will be added to the "User Activation" module in the near future? This would be a welcome addition, so we can support multiple user groups with different (security) requirements.